Block incoming connections via iptables

Post new topic   Reply to topic    DD-WRT Forum Index -> Advanced Networking
View previous topic :: View next topic  
Author Message
Br1ck3r
DD-WRT Novice


Joined: 20 Jul 2021
Posts: 2
PostPosted: Mon Oct 18, 2021 7:09    Post subject: Block incoming connections via iptables Reply with quote
Hello everyone,
I would like to block all the incoming connections on a specific device that is connected via ethernet on my DD-WRT (which is used to create a separate subnet for trusted devices).

Let's say that I want to block all the incoming connections for my device which has IP 192.168.1.3, how can I do it via iptables on the DD-WRT interface?

Thanks
Back to top View user's profile Send private message
Sponsor
Alozaros
DD-WRT Guru


Joined: 16 Nov 2015
Posts: 6445
Location: UK, London, just across the river..
PostPosted: Mon Oct 18, 2021 7:42    Post subject: Reply with quote
https://forum.dd-wrt.com/wiki/index.php/Iptables
_________________
Atheros
TP-Link WR740Nv1 ---DD-WRT 55630 WAP
TP-Link WR1043NDv2 -DD-WRT 55723 Gateway/DoT,Forced DNS,Ad-Block,Firewall,x4VLAN,VPN
TP-Link WR1043NDv2 -Gargoyle OS 1.15.x AP,DNS,QoS,Quotas
Qualcomm-Atheros
Netgear XR500 --DD-WRT 55779 Gateway/DoH,Forced DNS,AP Isolation,4VLAN,Ad-Block,Firewall,Vanilla
Netgear R7800 --DD-WRT 55819 Gateway/DoT,AD-Block,Forced DNS,AP&Net Isolation,x3VLAN,Firewall,Vanilla
Netgear R9000 --DD-WRT 55779 Gateway/DoT,AD-Block,AP Isolation,Firewall,Forced DNS,x2VLAN,Vanilla
Broadcom
Netgear R7000 --DD-WRT 55460 Gateway/SmartDNS/DoH,AD-Block,Firewall,Forced DNS,x3VLAN,VPN
NOT USING 5Ghz ANYWHERE
------------------------------------------------------
Stubby DNS over TLS I DNSCrypt v2 by mac913
Back to top View user's profile Send private message
egc
DD-WRT Guru


Joined: 18 Mar 2014
Posts: 12904
Location: Netherlands
PostPosted: Mon Oct 18, 2021 9:25    Post subject: Reply with quote
Moved this thread to a more appropriate forum

Please read the forum guidelines with many helpful pointers about where and what to post, what to download and many more helpful tips:
https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324087

You are not giving the required information like router model build number network setup to give you optimal support Sad

Depending on the above all incoming connections are already blocked by default, that is what the firewall is for.
_________________
Routers:Netgear R7000, R6400v1, R6400v2, EA6900 (XvortexCFE), E2000, E1200v1, WRT54GS v1.
Install guide R6400v2, R6700v3,XR300:https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=316399
Install guide R7800/XR500: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=320614
Forum Guide Lines (important read):https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324087
Back to top View user's profile Send private message
Wildlion
DD-WRT Guru


Joined: 24 May 2016
Posts: 1416
PostPosted: Wed Oct 20, 2021 21:30    Post subject: Reply with quote
egc wrote:


Depending on the above all incoming connections are already blocked by default, that is what the firewall is for.


with the caveat of device to device will not work since they may not hit the routers firewall.
Back to top View user's profile Send private message
Alozaros
DD-WRT Guru


Joined: 16 Nov 2015
Posts: 6445
Location: UK, London, just across the river..
PostPosted: Thu Oct 21, 2021 5:54    Post subject: Reply with quote
Wildlion wrote:
egc wrote:


Depending on the above all incoming connections are already blocked by default, that is what the firewall is for.


with the caveat of device to device will not work since they may not hit the routers firewall.


in other words, you cannot block connections on your LAN to LAN side, but only WAN to LAN , LAN to WAN sides..

google SPI firewall..
_________________
Atheros
TP-Link WR740Nv1 ---DD-WRT 55630 WAP
TP-Link WR1043NDv2 -DD-WRT 55723 Gateway/DoT,Forced DNS,Ad-Block,Firewall,x4VLAN,VPN
TP-Link WR1043NDv2 -Gargoyle OS 1.15.x AP,DNS,QoS,Quotas
Qualcomm-Atheros
Netgear XR500 --DD-WRT 55779 Gateway/DoH,Forced DNS,AP Isolation,4VLAN,Ad-Block,Firewall,Vanilla
Netgear R7800 --DD-WRT 55819 Gateway/DoT,AD-Block,Forced DNS,AP&Net Isolation,x3VLAN,Firewall,Vanilla
Netgear R9000 --DD-WRT 55779 Gateway/DoT,AD-Block,AP Isolation,Firewall,Forced DNS,x2VLAN,Vanilla
Broadcom
Netgear R7000 --DD-WRT 55460 Gateway/SmartDNS/DoH,AD-Block,Firewall,Forced DNS,x3VLAN,VPN
NOT USING 5Ghz ANYWHERE
------------------------------------------------------
Stubby DNS over TLS I DNSCrypt v2 by mac913
Back to top View user's profile Send private message
Display posts from previous:    Page 1 of 1
Post new topic   Reply to topic    DD-WRT Forum Index -> Advanced Networking All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You cannot download files in this forum